In the Linux kernel, the following vulnerability has been resolved:

orangefs: fix out-of-bounds fsid access

Arnd Bergmann sent a patch to fsdevel, he says:

"orangefs_statfs() copies two consecutive fields of the superblock into
the statfs structure, which triggers a warning from the string fortification
helpers"

Jan Kara suggested an alternate way to do the patch to make it more readable.

I ran both ideas through xfstests and both seem fine. This patch
is based on Jan Kara's suggestion.

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

kernel.org https://git.kernel.org/stable/c/137a06dc0ff8b2d2069c2345d015ef0fa71df1ed

kernel.org https://git.kernel.org/stable/c/1617249e24bd04c8047956afb43feec4876d1715

kernel.org https://git.kernel.org/stable/c/53e4efa470d5fc6a96662d2d3322cfc925818517

kernel.org https://git.kernel.org/stable/c/556edaa27c27db24a0f34c78cebef90e5bb6e167

kernel.org https://git.kernel.org/stable/c/6a3cacf6d3cf0278aa90392aef2fc3fe2717a047

kernel.org https://git.kernel.org/stable/c/74159d409da82269311a60256aad8ae8753da450

kernel.org https://git.kernel.org/stable/c/b90176a9553775e23966650e445b1866e62e4924

kernel.org https://git.kernel.org/stable/c/de8a5f7b71800a11fbaffc8ddacf08ead78afcc5

Title: kernel de Linux
Description:  En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: orangefs: corrige el acceso fsid fuera de los límites Arnd Bergmann envió un parche a fsdevel, dice: "orangefs_statfs() copia dos campos consecutivos del superbloque en la estructura statfs, lo que activa una advertencia de los ayudantes de fortificación de cuerdas" Jan Kara sugirió una forma alternativa de hacer el parche para hacerlo más legible. Ejecuté ambas ideas en xfstests y ambas parecen estar bien. Este parche se basa en la sugerencia de Jan Kara.